Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rpqFFJIDBAsgEn78DrOqtMqRtHQ.roa
File: rpqFFJIDBAsgEn78DrOqtMqRtHQ.roa (raw, json)
Hash identifier: 4WEfyG3fA1dz4qptZXLsPkNdvwrYQSNPQRWOLuodjK0=
Subject key identifier: AE:9A:85:14:92:03:04:0B:20:12:7E:FC:0E:B3:AA:B4:CA:91:B4:74
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08A4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rpqFFJIDBAsgEn78DrOqtMqRtHQ.roa
Signing time: Tue 29 Sep 2020 09:52:16 +0000
ROA not before: Tue 29 Sep 2020 09:52:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 218.32.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2212 (0x8a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE9A85149203040B20127EFC0EB3AAB4CA91B474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f9:f7:41:68:7c:c6:22:84:48:30:66:be:9b:
7c:2e:49:90:24:34:de:0f:6c:c5:e4:a3:c0:79:dd:
e9:4e:67:3f:12:12:08:e1:ce:8b:f3:25:a2:af:20:
5d:8b:44:6e:d7:b9:98:a8:3e:75:b2:cd:42:70:e9:
43:b1:d7:e1:35:3e:ef:d9:7e:58:bc:b6:91:88:26:
eb:5b:f5:00:2d:31:0e:99:f6:b0:d6:1b:53:a5:ea:
e7:12:63:27:f1:9c:53:3d:f9:c0:a2:fa:07:e3:4e:
51:7b:ee:5e:30:b5:44:59:be:06:9d:25:2b:82:8d:
58:5b:77:be:7a:bf:7a:29:03:5b:0c:2b:f2:ce:a4:
36:fe:58:e5:d2:a3:6f:aa:de:09:13:64:ba:0e:cb:
be:4c:75:71:9d:7f:e4:45:33:0c:34:44:47:06:b8:
c3:ee:35:98:57:33:f7:f3:1e:bf:a8:13:1b:f8:9b:
0b:41:89:4f:5e:06:c9:33:22:ec:81:73:d9:c4:89:
4b:e2:6d:59:02:60:f8:f8:64:bc:06:79:1f:dd:63:
fd:db:43:40:36:89:ad:7f:4e:e8:fb:1b:83:6d:d5:
23:4d:b3:52:68:bf:58:c2:89:2f:54:1c:1d:bf:47:
b5:d7:90:24:f0:0c:91:bf:84:5d:3b:21:71:5e:80:
68:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:9A:85:14:92:03:04:0B:20:12:7E:FC:0E:B3:AA:B4:CA:91:B4:74
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rpqFFJIDBAsgEn78DrOqtMqRtHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
71:85:ca:7c:fc:e3:6a:18:28:96:75:5d:d5:15:99:e3:a2:f5:
72:ab:2b:80:64:ee:c5:a9:60:af:57:4c:aa:dc:1a:f7:96:ab:
30:ec:a9:ed:fe:84:80:28:05:63:9d:60:f2:ba:37:de:23:f6:
e0:c6:3f:a2:fc:9e:ed:65:98:71:cb:ec:92:9e:3e:2a:aa:e5:
39:75:61:2c:4e:d0:5d:bf:c8:30:e4:74:aa:8b:62:33:67:2b:
08:e7:21:00:ac:72:92:20:7a:84:05:6b:e8:e1:73:27:5e:d1:
92:3e:cd:4c:61:b7:98:3f:ee:6b:72:60:7a:64:18:b2:90:80:
e6:b7:52:0d:c7:f9:ff:11:a0:9e:fa:3f:cb:0b:65:82:da:11:
9f:b6:fa:79:da:ea:63:3f:c1:5d:02:74:3a:5e:7a:25:98:45:
c6:3a:94:61:76:f4:b4:63:03:30:10:86:88:b3:2e:1f:86:e2:
5e:7d:c5:74:37:81:8f:05:e0:82:b2:b3:43:22:b0:8b:18:df:
44:3a:b3:65:2f:ca:fa:06:97:cc:53:20:10:05:20:1b:b4:f6:
f9:6f:3c:5b:b7:6d:2c:eb:8c:dc:20:ee:fe:0e:10:43:0a:ee:
0c:d2:52:c3:ba:22:d9:cf:b6:74:3c:40:bc:50:1e:88:bc:be:
2a:61:44:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:01 2023 by rpki-client on console-ams.rpki-client.org